sebres
932708de9e
fixed --pidfile bug, introduced in gh-1322:
...
gentoo-initd fixed --pidfile bug: `--pidfile` is option of start-stop-daemon, not argument of fail2ban (see gh-1434)
closes gh-1434
2016-05-20 11:01:00 +02:00
sebres
52377984cd
back to mandatory space, ungrouping of sub parameters in `__prefix_line` + small code review;
2016-05-19 17:57:48 +02:00
sebres
25af11215b
test case for generic common moved to `./fail2ban/tests/config/filter.d/zzz-generic-example.conf` to prevent shipping it with fail2ban installations
2016-05-17 20:08:46 +02:00
sebres
cb4f9be8b2
the date brackets removed from filters using `__prefix_line`, because `__prefix_line` already contains the date ambit;
2016-05-17 11:55:02 +02:00
sebres
de813acf51
extends generic `__prefix_line` with optional brackets for the date ambit (gh-1421), added new parameter `__date_ambit` + test case added;
2016-05-17 11:54:43 +02:00
sebres
3e49522b7a
fixes unexpected extra regex-space in generic `__prefix_line` (gh-1405, misleadingly committed in d2a9537568
);
...
all optional spaces normalized in generic include `common.conf` + test cases are extended (using new example pseudo-filter and test log `zzz-generic-example`);
2016-05-13 20:26:37 +02:00
Yaroslav Halchenko
d6eae28eb5
Merge pull request #1419 from sebres/gh-1417
...
fixes gh-1417 Grave tags substitution bug. [part. cherry-picked from 0.10]
2016-05-13 10:28:29 -04:00
sebres
cce63926ce
ChangeLog entry added
2016-05-13 16:11:38 +02:00
sebres
a4b8f6e49e
[part. cherry-picked from 0.10] invalid recursion check in substituteRecursiveTags: for example action `bsd-ipfw` produced ValueError('properties contain self referencing definitions and cannot be resolved...')
...
test cases extended for exactly this case;
closes gh-1417
2016-05-13 14:12:17 +02:00
sebres
bdc2d07946
fix suhosin_log in common paths - log files should be separated using "\n":
...
prevents to throw an error "File option must be 'head' or 'tail'", if jail suhosin will be enabled.
2016-05-11 18:49:04 +02:00
Yaroslav Halchenko
9664406719
Merge pull request #1404 from Aeyoun/patch-1
...
Assert https not http
2016-04-30 12:23:47 -04:00
Daniel Aleksandersen
75eb240846
Assert https not http
...
Resolves test regression from issue #1395 .
2016-04-30 16:18:56 +02:00
Yaroslav Halchenko
2948026a60
Merge pull request #1395 from Aeyoun/patch-2
...
Use HTTPS in Debuggex URLs
2016-04-27 21:14:16 -04:00
Yaroslav Halchenko
d7b0a2f249
Merge pull request #1397 from jungle-boogie/patch-1
...
update doc url
2016-04-27 21:13:55 -04:00
Yaroslav Halchenko
d2f1de5da8
Merge pull request #1400 from yarikoptic/bf-cymru
...
BF+ENH: fixed up testing querying cymru information + assert_dict_equal
2016-04-27 08:36:42 -04:00
Yaroslav Halchenko
340a5a23f4
BF+ENH: fixed up testing querying cymru information + assert_dict_equal helper
2016-04-26 09:30:36 -04:00
jungle-boogie
d889918f19
update doc url
...
direct to confluence page. no code changes.
2016-04-24 21:35:18 -07:00
Daniel Aleksandersen
add67227f4
Use HTTPS in Debuggex URLs
2016-04-24 02:20:02 +02:00
Yaroslav Halchenko
aa303acfd6
Merge pull request #1381 from theDogOfPavlov/patch-3
...
Tightened up exim regexes to catch rDNS entries
2016-04-23 18:27:38 -04:00
sebres
e595fefc9b
change log and thanks entries
2016-04-14 14:50:17 +02:00
Alexandre Perrin
7712310d2d
Be more backward compatible on matching postfix/smtps/smtpd
...
Support trailing smtps also and not only smtpd.
suggested by @sebres
2016-04-14 13:54:58 +02:00
Alexandre Perrin
1a299409e5
Fix postfix/smtps/smtpd matching.
2016-04-14 12:10:58 +02:00
theDogOfPavlov
fcca1413b0
rDNS tests
...
added additional tests to cover logs with rDNS
2016-04-01 18:47:19 +01:00
theDogOfPavlov
1eb51b1bc2
Tightened up regexes to catch rDNS entries
2016-04-01 18:07:01 +01:00
Yaroslav Halchenko
1153c0a5c6
Merge pull request #1359 from yarikoptic/bf-blocktype
...
BF: Include iptables-common (not removed iptables-blocktype) within firewallcmd- actions
2016-04-01 07:19:28 -04:00
sebres
9d7e860edb
possibility to increase verbosity up to heavy debug (partial ported from 716-cs)
2016-04-01 10:38:11 +02:00
Yaroslav Halchenko
db2dd070ad
Merge pull request #1356 from opoplawski/bug-1354
...
Fedora use mariadb by default, fix log path
2016-03-31 22:11:10 -04:00
Serg G. Brester
b9b7ecbf6b
Merge pull request #1357 from sebres/monit-new-fltr
...
monit filter fixup for the new version (gh-1355)
2016-03-26 11:39:26 +01:00
TorontoMedia
3d239215cd
Two new firewalld actions with rich rules for firewalld-0.3.1+ (gh-1367)
...
closes #1367
2016-03-25 17:28:30 +01:00
sebres
ac27c9cb96
Merge branch 'patch-2' (gh-1371)
2016-03-25 17:05:23 +01:00
Serg G. Brester
0effe76971
Merge pull request #1370 from theDogOfPavlov/patch-1
...
Added regex for LDAP authentication failures
2016-03-25 15:30:39 +01:00
Serg G. Brester
fad4121709
Merge pull request #1365 from jblachly/sshd-pam-failed
...
SmartOS PAM Authentication failed (not failURE)
2016-03-24 13:47:49 +01:00
jblachly
e9202fa0b2
Placed failure (illumos) at end of regex
2016-03-24 00:43:15 -04:00
theDogOfPavlov
33ef2311e7
added tests to cover exim regex additions
2016-03-23 11:58:03 +00:00
theDogOfPavlov
28e246b5d7
added note to cover additional exim filters
2016-03-23 11:52:09 +00:00
theDogOfPavlov
42f43d0f8a
added note to cover dovecot ldap regex
2016-03-23 11:51:12 +00:00
theDogOfPavlov
eaf6bbb08f
add test to catch LDAP auth failures
2016-03-23 11:47:31 +00:00
theDogOfPavlov
fe1475be95
Additional exim regexes to cover common attacks...
2016-03-21 05:59:59 +00:00
theDogOfPavlov
cf2aa9c1c0
Added regex for LDAP authentication failures
2016-03-21 05:53:23 +00:00
jblachly
25c2334bc8
SmartOS PAM Authentication failed (not failURE)
...
SmartOS (and likely other Illumos platforms) enter log entries for failed sshd logins of the form:
`Authentication failed for USER from HOST`
The current sshd.conf regex matches `failure` -- add to this a match for `failed` to support Illumos
2016-03-16 13:52:01 -04:00
Yaroslav Halchenko
bfac42eb2e
changelog for journalmatch pure-ftpd
2016-03-14 11:10:28 -04:00
Yaroslav Halchenko
86024f745b
Merge pull request #1362 from weberhofer/patch-2
...
define journalmatch setting for pure-ftps
2016-03-14 11:09:16 -04:00
Johannes Weberhofer
bd25a43417
define journalmatch setting for pure-ftps
2016-03-11 18:19:53 +01:00
Yaroslav Halchenko
eed1a0d686
BF: Include iptables-common (not removed iptables-blocktype) within firewallcmd- actions ( Closes #1254 )
2016-03-09 23:06:59 -05:00
Orion Poplawski
f3f813a925
- mysqld does not log login attempts to the journal.
...
- Add /var/log/mysqld.log to mysql_log
2016-03-09 13:52:50 -07:00
sebres
9d13bb0c3a
ChangeLog and THANKS entries
2016-03-09 20:11:14 +01:00
sebres
37c9075fad
fixed monit filter: failregex find now both previous and new versions:
...
- failregex of previous monit version merged as single expression;
- extended failregex with new monit "access denied" version;
2016-03-09 20:06:14 +01:00
Orion Poplawski
dfc65018da
Fedora use mariadb by default, fix log path
2016-03-09 11:36:06 -07:00
Yaroslav Halchenko
d533c0761d
Merge pull request #1349 from yarikoptic/bf-tests-use-configdir
...
BF: use tests.utils.CONFIG_DIR instead of fixed one (Closes #1348 )
2016-03-08 09:11:34 -05:00
Yaroslav Halchenko
634e68036e
Get ready for further developments
2016-03-08 08:36:29 -05:00